Route Origin Authorization
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51ff18c8-d898-4227-9a20-f8e06243cf2f.roa
File: 51ff18c8-d898-4227-9a20-f8e06243cf2f.roa (raw, json)
Hash identifier: o48c92HJxoRbwJygOkjcJ/6p0hbXV64Ymo5G+cgQvec=
Subject key identifier: 80:CF:37:02:E5:31:B3:2B:F9:D4:B2:6E:08:37:89:F7:97:4F:C2:50
Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Certificate serial: 38066CB9E2A25A6E5C2267B7E4F699F382248BD9
Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51ff18c8-d898-4227-9a20-f8e06243cf2f.roa
Signing time: Mon 27 Jan 2025 00:00:00 +0000
ROA not before: Mon 27 Jan 2025 00:00:00 +0000
ROA not after: Mon 03 Mar 2025 23:59:59 +0000
asID: 16509
IP address blocks: 44.215.140.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:06:6c:b9:e2:a2:5a:6e:5c:22:67:b7:e4:f6:99:f3:82:24:8b:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7
Validity
Not Before: Jan 27 00:00:00 2025 GMT
Not After : Mar 3 23:59:59 2025 GMT
Subject: serialNumber=d0dbc307daa9b9fa7d507d20a7c9a44fc851c93b080b4d4ebc627fb9fd7504ab, CN=b25c970f-d813-445c-bfe2-62668518c87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:08:03:b4:05:3f:6a:8e:5b:43:29:96:78:58:
34:16:80:cb:0a:7c:ee:01:4c:9a:ee:9b:b7:d7:f8:
fb:17:c6:3b:97:72:43:d2:d0:74:13:d2:fe:30:a3:
c5:27:59:c9:9f:b4:7b:e1:c8:f8:15:8b:d8:70:a0:
36:f4:eb:75:25:28:46:c4:70:c7:ac:d3:09:f7:f1:
66:b5:98:76:70:a6:23:64:96:e0:6d:71:35:40:0c:
ec:83:e2:6f:14:21:2a:4f:d3:f2:e9:d2:62:1a:6b:
14:d6:5c:63:ea:d5:54:77:49:59:f8:16:b6:4a:af:
60:88:32:3a:43:91:9e:8c:b9:47:2f:c3:1e:d2:05:
08:c0:92:97:a7:b7:ad:96:3b:14:65:07:1b:56:16:
d2:6a:5e:97:b7:bf:d1:2d:92:e9:96:50:11:6d:25:
fc:2a:ab:70:e7:f7:74:b0:09:bc:e3:34:7b:8d:f2:
2c:4b:9b:7f:b0:99:fb:85:51:36:4e:bf:c5:8b:64:
66:5f:bd:ac:2d:f8:d2:7a:09:d9:74:54:84:52:9f:
ef:07:39:a8:e3:d5:da:9f:02:cf:ff:e5:e8:3a:46:
2e:54:8b:1e:7d:bd:7e:d1:87:df:58:7a:dd:3d:01:
58:4d:7f:d9:58:75:38:e6:02:5a:aa:f5:8d:34:9f:
68:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CF:37:02:E5:31:B3:2B:F9:D4:B2:6E:08:37:89:F7:97:4F:C2:50
X509v3 Authority Key Identifier:
keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51ff18c8-d898-4227-9a20-f8e06243cf2f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
44.215.140.0/22
Signature Algorithm: sha256WithRSAEncryption
a1:bf:6d:9c:55:25:bf:05:cf:0c:6c:76:ac:9d:fb:db:74:bc:
2d:b5:13:e5:d5:89:90:33:4f:80:78:54:3d:cb:68:55:f2:0e:
d3:4e:af:2b:f2:02:76:ca:62:e8:59:66:a1:21:0f:98:6e:dd:
cb:7d:aa:65:cd:d3:c0:c3:f1:5c:d7:f9:c3:7a:03:b9:a7:b7:
47:bf:30:47:e1:a8:ea:5b:42:2d:82:ef:ab:6a:97:51:99:69:
24:14:5e:1f:d1:94:7c:55:f7:7a:62:a3:6f:89:71:8c:2e:c7:
1d:17:37:14:49:3a:dc:fd:68:1b:1c:25:b1:cc:93:82:3b:cf:
60:cb:c8:0b:23:06:ea:db:ca:6f:d8:bb:08:1f:96:6d:e3:4a:
6f:2e:94:de:80:28:83:ee:6b:00:f3:4d:ab:e4:18:10:8f:12:
bc:c2:27:a0:2b:5d:39:72:cb:87:f3:fd:fa:fd:bf:ff:26:b1:
38:ef:0c:cf:2e:27:eb:3d:c1:1a:6c:29:a7:0d:04:dd:d3:62:
5f:f1:f5:fe:d9:de:83:44:1f:12:2c:a5:8d:9c:7c:64:74:d8:
9c:04:ba:7e:10:b8:5e:79:7f:b0:91:24:91:8a:87:75:17:93:
36:1c:1f:a1:8e:97:49:02:74:ed:9c:8f:fe:ae:26:49:d9:ba:
eb:76:9e:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:37:30 2025 by rpki-client